Technology RadarTechnology Radar

AI-Assisted Code Review

workflow
This item was not updated in last three versions of the Radar. Should it have appeared in one of the more recent editions, there is a good chance it remains pertinent. However, if the item dates back further, its relevance may have diminished and our current evaluation could vary. Regrettably, our capacity to consistently revisit items from past Radar editions is limited.
Adopt

Using AI to review code before (or in addition to) human review is one of the highest-return applications of LLMs in software engineering today. As AI-generated code becomes the norm, AI review has become correspondingly more important — CodeRabbit's December 2025 report found AI-coauthored PRs contain ~1.7x more issues than human-authored ones.

Why It's in Adopt

AI code review is low-risk, immediately useful, and fits naturally into existing workflows. You don't need new tooling — you can start today by pasting code into Claude or ChatGPT. Adoption has become widespread: 84% of developers report using or planning to use AI review tools, with enterprise deployment accelerating through 2025.

What AI Review Excels At

  • Obvious bugs: Off-by-one errors, null pointer dereferences, race conditions
  • Security issues: SQL injection, XSS, hardcoded secrets, missing input validation
  • Code style and clarity: Suggesting clearer variable names, spotting overly complex logic
  • Missing edge cases: "What happens when the input list is empty?"
  • Documentation gaps: Identifying undocumented public APIs
  • Auto-fix: Leading tools (CodeRabbit, Copilot) can now implement the fixes they suggest — not just comment on them

What Human Review Still Does Better

  • Understanding team norms and implicit conventions
  • Architectural decisions that require broader codebase context
  • Judging whether a feature solves the right problem
  • Interpersonal dynamics (tone of feedback, teaching moments)

How to Integrate It

Option 1: Pre-PR (local) Before opening a PR, paste your diff into Claude or ChatGPT and ask: "Review this diff for bugs, security issues, and readability problems." CodeRabbit also offers a VS Code/Cursor/Windsurf extension for pre-PR review directly in your editor.

Option 2: GitHub PR comments CodeRabbit is the category leader with 2M+ repos connected and 13M+ PRs processed. GitHub Copilot's PR review (available on Business and Enterprise plans) added CodeQL + ESLint integration and source file context-gathering in October 2025. Qodo (formerly PR-Agent) is another well-regarded specialist option.

Option 3: IDE-based Use Copilot Chat or Cursor to review a file: "Review this file for any issues you can spot."

Caution

AI reviewers will flag false positives and miss context-dependent issues. Treat AI review as a first pass, not a replacement for human review.